CWE-78 (OS命令中使用的特殊元素转义处理不恰当(OS命令注入)) — Vulnerability Class 2646

2646 vulnerabilities classified as CWE-78 (OS命令中使用的特殊元素转义处理不恰当(OS命令注入)). AI Chinese analysis included.

CVE ID	Title	CVSS	Severity	Published
CVE-2019-1627	Cisco Integrated Management Controller Information Disclosure Vulnerability — Cisco Unified Computing System (Management Software)	6.5	-	2019-06-20
CVE-2019-10149	Exim 操作系统命令注入漏洞 — exim	9.8	-	2019-06-05
CVE-2019-6739	Malwarebytes Anti-Malware 命令注入漏洞 — Antimalware	8.8	-	2019-06-03
CVE-2019-1778	Cisco NX-OS Software Command Injection Vulnerability — Cisco NX-OS Software	6.7	-	2019-05-15
CVE-2019-1774	Cisco NX-OS Software Command Injection Vulnerability — Cisco NX-OS Software	6.7	-	2019-05-15
CVE-2019-1775	Cisco NX-OS Software Command Injection Vulnerability — Cisco NX-OS Software	6.7	-	2019-05-15
CVE-2019-1776	Cisco NX-OS Software Command Injection Vulnerability — Cisco NX-OS Software	6.7	-	2019-05-15
CVE-2019-1769	Cisco NX-OS Software Line Card Command Injection Vulnerability — Cisco NX-OS Software	6.7	-	2019-05-15
CVE-2019-1770	Cisco NX-OS Software Command Injection Vulnerability — Cisco NX-OS Software	6.7	-	2019-05-15
CVE-2019-1732	Cisco NX-OS Software Remote Package Manager Command Injection Vulnerability — Cisco NX-OS Software	6.4	-	2019-05-15
CVE-2019-1709	Cisco Firepower Threat Defense Software Command Injection Vulnerability — Cisco Firepower Threat Defense Software	7.8	-	2019-05-03
CVE-2019-1699	Cisco Firepower Threat Defense Software Command Injection Vulnerability — Cisco Firepower Threat Defense (FTD) Software	7.8	-	2019-05-03
CVE-2019-1725	Cisco UCS B-Series Blade Servers Local Management CLI Arbitrary File Creation or CLI Parameter Injection Vulnerability — Cisco UCS B-Series Blade Server Software	5.5	-	2019-04-18
CVE-2019-10880	多款Xerox产品操作系统命令注入漏洞 — AltaLink B8045/B8055/B8065/B8075/B8090	9.8	-	2019-04-12
CVE-2018-13285	Synology Router Manager 操作系统命令注入漏洞 — Synology Router Manager (SRM)	8.8	-	2019-04-01
CVE-2018-13284	Synology DiskStation Manager 操作系统命令注入漏洞 — DiskStation Manager (DSM)	8.8	-	2019-04-01
CVE-2019-1745	Cisco IOS XE Software Command Injection Vulnerability — Cisco IOS XE Software	7.8	-	2019-03-27
CVE-2018-20106	SMB printer settings don't escape characters in passwords properly — yast2-printer	8.1	-	2019-03-15
CVE-2019-3919	Nokia Alcatel Lucent I-240W-Q GPON ONT 命令注入漏洞 — Alcatel Lucent I-240W-Q GPON ONT	8.8	-	2019-03-05
CVE-2019-3920	Nokia Alcatel Lucent I-240W-Q GPON ONT 命令注入漏洞 — Alcatel Lucent I-240W-Q GPON ONT	8.8	-	2019-03-05
CVE-2018-19639	Code execution if run with command line switch -v — supportutils	8.4	-	2019-03-05
CVE-2019-1674	Cisco Webex Meetings Desktop App and Cisco Webex Productivity Tools Update Service Command Injection Vulnerability — Cisco Webex Meetings Desktop App	7.8	-	2019-02-28
CVE-2018-15380	Cisco HyperFlex Software Command Injection Vulnerability — Cisco HyperFlex HX-Series	8.8	-	2019-02-20
CVE-2018-17707	Epic Games Launcher 安全漏洞 — Epic Games Launcher	8.8	-	2019-01-24
CVE-2019-1636	Cisco Webex Teams URI Handler Insecure Library Loading Vulnerability — Cisco Webex Teams	8.8	-	2019-01-23
CVE-2018-6342	react-dev-utils 安全漏洞 — react-dev-utils	9.8	-	2018-12-31
CVE-2018-15722	Logitech Harmony Hub 操作系统命令注入漏洞 — Logitech Harmony Hub	8.1	-	2018-12-20
CVE-2018-19007	Geutebrück E2 Camera Series 操作系统命令注入漏洞 — GeutebrÃ¼ck GmbH E2 Camera Series versions prior to 1.12.0.25	9.8	-	2018-12-14
CVE-2018-15716	NUUO NVRMini2 操作系统命令注入漏洞 — NUUO NVRMini2	8.8	-	2018-11-30
CVE-2018-15442	Cisco Webex Meetings Desktop App Update Service Command Injection Vulnerability — Cisco WebEx Event Center	7.8	-	2018-10-24

Vulnerabilities classified as CWE-78 (OS命令中使用的特殊元素转义处理不恰当(OS命令注入)) represent 2646 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.

Goal Reached Thanks to every supporter — we hit 100%!

CWE-78 (OS命令中使用的特殊元素转义处理不恰当(OS命令注入)) — Vulnerability Class 2646